Settings for GUI and CLI

sett-gui settings

The sett desktop app allows a number of options to be customized via its Settings page. For instance, you may change the default output directory, or enable/disable package verification before a transfer.

Each setting has a predefined default value, which is used when first running the tool or if loading the current settings fails for any reasons.

To change the settings in the desktop app, navigate to the Settings tab:

Changes made to Settings become effective immediately. Changes can be reset back to their factory default by clicking on the Reset settings button.

For detailed settings explanations, please refer to the settings section below.

Settings

The following options can be set in the config file:

Verify package: When enabled (the default value), the following verifications are made before encrypting or transferring data:

DTR ID is valid and the transfer is authorized.
Sender and Recipients public OpenPGP keys are approved by the BioMedIT key validation authority.
Recipients are approved Data Managers of the BioMedIT project for which data is being encrypted.
The name of the data package matches the pattern <project_code>_<date_format>.zip. This ensures no sensitive information is mistakenly included in the file name.

Note that that some of the above verifications require communication with the BioMedIT portal. When using sett outside of a BioMedIT project, this setting should therefore be disabled.

Portal URL: URL of a BioMedIT portal instance. The portal is used for key approval, DTR (Data Transfer Request) validation, and retrieval of data associated with a given DTR (when sett is being used in authenticated mode).

The default value of this setting is: https://portal.dcc.sib.swiss.

Default output directory

Default destination directory for operations such as encryption to the local filesystem or decryption. Defaults are:

Linux: $XDG_DATA_HOME or $HOME/.local/share;
macOS: $HOME/Library/Application Support;
Windows: {FOLDERID_LocalAppData}.

Non-editable settings

This section displays values of setting that cannot be modified by the user. These settings are displayed here for convenience. They can be copied to the clipboard via a dedicated “copy to clipboard” button.

sett-cli settings

The sett-cli is stateless by design, meaning that there is no persistent configuration file where settings can be modified and stored.
Instead, settings can be set via the following shell environment variables. All settings are optional and have a default value.

SETT_OPENPGP_KEY_PWD: Password to unlock the secret OpenPGP key used to decrypt or sign data. When this environmental variable is set, sett uses its content instead of interactively asking the user to enter a password.
SETT_OPENPGP_KEY_PWD_FILE: Full path and name of a file containing the password to unlock the secret OpenPGP key used to decrypt or sign data. When this environmental variable is set, sett uses its content instead of interactively asking the user to enter a password. The file containing the password should not be encrypted.
SETT_PORTAL_URL: URL of the BioMedIT portal instance to be used. For details see the description of the GUI Portal URL setting. This setting defaults to https://portal.dcc.sib.swiss.
SETT_OIDC_CLIENT_ID: Client ID with which sett should identify with the OpenID Connect issuer (see SETT_OIDC_ISSUER_URL). Only relevant when using sett in authenticated mode. This setting defaults to sett.
SETT_OIDC_ISSUER_URL: URL of the OpenID Connect issuer used when authenticating with the BioMedIT Portal. Only relevant when using sett in authenticated mode. This setting defaults to https://login.biomedit.ch/realms/biomedit.